Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-43563

Опубликовано: 04 нояб. 2022
Источник: nvd
CVSS3: 8.1
CVSS3: 8.8
EPSS Низкий

Описание

In Splunk Enterprise versions below 8.2.9 and 8.1.12, the way that the rex search command handles field names lets an attacker bypass SPL safeguards for risky commands https://docs.splunk.com/Documentation/SplunkCloud/latest/Security/SPLsafeguards . The vulnerability requires the attacker to phish the victim by tricking them into initiating a request within their browser. The attacker cannot exploit the vulnerability at will.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:*
Версия от 8.1.0 (включая) до 8.1.12 (исключая)
cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:*
Версия от 8.2.0 (включая) до 8.2.9 (исключая)
cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:*
Версия до 9.0.2203 (исключая)

EPSS

Процентиль: 42%
0.00199
Низкий

8.1 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-20
NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-x733-8f5f-m9rp

CVSS3: 8.8
github
больше 3 лет назад

In Splunk Enterprise versions below 8.2.9 and 8.1.12, the way that the rex search command handles field names lets an attacker bypass SPL safeguards for risky commands https://docs.splunk.com/Documentation/SplunkCloud/latest/Security/SPLsafeguards . The vulnerability requires the attacker to phish the victim by tricking them into initiating a request within their browser. The attacker cannot exploit the vulnerability at will.

EPSS

Процентиль: 42%
0.00199
Низкий

8.1 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-20
NVD-CWE-Other